A blog by Oleg Shilovitsky
Information & Comments about Engineering and Manufacturing Software

Cloud PLM and “Good Enough” Security

Cloud PLM and “Good Enough” Security
Oleg
Oleg
9 July, 2012 | 2 min for reading

When it comes to “cloud PLM”, the discussion about “security” is almost inevitable. This is one of the top concerns of people and, at the same way, top argument of IT and other people arguing against use of public (and other variations of) cloud PLM systems. I’m reading about security topic and the cloud in many blogs these days. The topic comes in different variations and aspects. Few days ago, I came across the article in ReadWriteWeb Enterprise blog – Why “Good Enough” Security Really Is Good Enough for Most Companies. Spend some time and have a read. This article resonated with some of my comments I’ve made previously about cloud, PLM and security. At the end it comes to the risk. The following passage I especially liked:

It may sound cynical, but avoiding legal liability for security negligence is an excellent goal. Not only does it protect your business, but it generally requires your organization to take advantage of the best practices and policies that are widely agreed upon. Security quality standards and independent auditors are the best protection against being found negligent, and they put businesses at the same starting line as everyone else.

Another thing about security rules I see as a very important is related to how organization can make security rules reasonable. Here is the situation I’ve seen many times. A company made very strict rules on how to share documents outside of organization with a portal and set of very complicated rules. At the same time, you can see how people are sharing files using Gmail and Google Drive / Docs. Another passage from ReadWriteWeb speaks exactly about that:

Make realistic rules. If you’re not realistic, employees will tune you out. If you say “don’t ever do X,” but someone turns out to have a good reason to do X, they will take the rules less seriously. It’s far better to explain why an employee shouldn’t do X, list some alternatives, and give mitigating advice for the times when X is unavoidable. For example, when extremely complex password requirements result in passwords no one can memorize, they end up on post-its near the desk. Such a complex password policy should be accompanied by advice on how to manage an unmemorable password. (For example, “Keep it in your wallet, not on the wall.”)

So, what is my conclusion? To set up realistic rules and goal for “good enough” is a way to go. I can see companies that will keep their gates closed. However, low cost barrier and good compromise will drive many companies to adopt cloud PLM sooner than later. Just my thoughts.

Best, Oleg

Recent Posts

Also on BeyondPLM

4 6
21 September, 2009

I was reading interesting article during the weekend- PLM & The Importance Of Process by Gary S. Vasilash. Gary is...

17 June, 2016

I’m digesting information from Autodesk Forge DevCon event I attended earlier this week in San Francisco. One of the technical...

4 September, 2023

In the age of digital transformation, enterprises are constantly striving to harness the vast potential of emerging technologies to stay...

21 July, 2024

Today I want to talk about Manufacturing BOM (or how it is often called MBOM). Over the course of last...

22 July, 2009

I’m looking on SolidJott plug-in for SolidWorks. My opinion, that social tools need to be integrated into CAD environment. The...

19 February, 2012

After posting my last blog multi CAD and PDM- dead lock?, I’ve got quite many emails and calls. It again...

25 June, 2010

When you talk to a sales person from one of the PLM companies, you for sure will be exposed to...

24 June, 2015

For many years, design collaboration and change management was an ultimate requirement for PDM tools. To manage revision history, share...

7 September, 2016

My attention was caught by tweet promoting CIMdata’s complimentary PLM Leadership Tutorials – a set of videos describing PLM in...

Blogroll

To the top